Cybersecurity Application Security Analyst - Expert
Huntington National Bank · Easton, Ohio, United States
Banking · 10,001+ employees
About the role
The analyst performs vulnerability scanning and manual testing to identify and remediate application security weaknesses. They also lead secure design meetings and train developers and junior engineers on security best practices.
What they look for
Requirements
Requires a bachelor's degree or equivalent experience with at least 5 years in cybersecurity and 3 years specifically in application security. Preferred qualifications include Security+ or CISSP certifications and strong communication skills.
Full description
Description
The Cybersecurity Application Security Analyst analyzes the security of applications in tandem with their underlying services. Application security engineers are constantly scanning applications for vulnerabilities, presenting the results to the application teams, and advising on resolutions before the vulnerabilities can be exploited. The Expert analyst combines automated tools with manual testing to validate vulnerabilities and must have a strong technical knowledge of the vulnerabilities found, as well as how to remediate and defend against them.
Primary Responsibilities:
- Perform vulnerability scanning and Review findings with Application Teams as well as document the security findings.
- Drive security efficiencies through automaton, enabling security team members to work on more advanced tasks.
- Actively participate and lead security team meetings that facilitate secure design.
- Train developers and junior application security engineers on weaknesses to avoid.
- Regularly monitor the security community for public-facing security issues, as well as to learn new tactics that can be used in testing.
- Use security standards and implementation configurations, as well as common security frameworks to improve the program.
Basic Qualifications:
- Bachelor’s degree or 4+ additional years of equivalent experience.
- 5 years of experience in Cybersecurity
- 3 years in Cybersecurity Application Security
Preferred Qualifications:
- Certifications: Security+, CISSP
- Highly motivated and a self-initiator
- Strong understanding of Application Security (common app vulnerabilities as well as remediation and defense strategies)
- Ability to communicate effectively clearly and concisely
Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)
Yes
Workplace Type:
Office
Our Approach to Office Workplace Type
Certain positions outside our branch network may be eligible for a flexible work arrangement. We’re combining the best of both worlds: in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.
Huntington is an Equal Opportunity Employer.
Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.
Note to Agency Recruiters: Huntington Bank will not pay a fee for any placement resulting from the receipt of an unsolicited resume. All unsolicited resumes sent to any Huntington Bank colleagues, directly or indirectly, will be considered Huntington Bank property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.